WHAT'S ON THE WIRELESS? AUTOMATING RF SIGNAL IDENTIFICATION presented at blackhat 2017

by Michael Ossmann, Dominic Spill,

Summary : Most organisations want to monitor wireless devices within their environment, but, with a growing number of disparate low cost wireless technologies appearing on the market, the scale of this task can be unmanageable. Even identifying the presence of rogue signals can be difficult, let alone identifying an offending device.
Software defined radio receivers allow us to receive arbitrary RF signals and are therefore the perfect platform on which to build automated spectrum monitoring tools. Now, we can take this concept further by combining rapid spectrum monitoring with automated signal identification and analysis, allowing organisations to seek out rogue RF devices in their environment.
We have developed open source tools to monitor the RF spectrum at a high level and then drill down to individual signals, supporting both reverse engineering and signals intelligence. By automatically combining the results with OSINT data from regulatory bodies around the world, we are able to build up a picture of devices transmitting in an environment.

Michael Ossmann: Michael Ossmann is a wireless security researcher who has been obsessed with Bluetooth for much of the past three years. He founded Great Scott Gadgets in an effort to put new tools into the hands of smart people.